Blue Team - Hacktivity

Recover deleted or modified file from shadow copy with shadow explorer

Read More

You have lost a critical file : Roll back time with ShadowExplorer

🤖 TL;DR If you save over a file by accident on Windows, and you had System Protection or backups enabled, VSS probably created a shadow copy — a hidden snapshot of your file from earlier. ShadowExplorer gives you an easy, GUI-based way to browse and export those previous versions. No time machine needed 🤗! The

Microsoft Azure cloud investigation DFIR cheatsheet

Read More

Microsoft Cloud Investigation – DFIR Cheatsheet

EDR internals by 0xLun hacktivity.fr

Read More

EDR internals

Understand how an EDR is built with this wonderful illustration

UDP Hole Punching | NAT traversal

Plus de details

Splunk cheatsheet hacktivity.fr

Read More

Splunk cheatsheet

volatility 2 docker docker-compose

Read More

Install Volatility Everywhere ( Docker & Standalone)

Standalone, Dockerfile and docker-compose to run volatility 2 in a docker container for easy forensic analysis

how to choose your EDR

Read More

How to choose your EDR solution ?

Learn how to select the right Endpoint Detection and Response (EDR) to enhance your organization’s security posture.

Read More

🤖 Volatility 3 – Windows | Cheatsheet (FR)

Une liste de modules et de commandes pour analyser les dumps mémoire Windows avec Volatility 3.

Types de réseaux virtuels

Read More

Types de Réseaux Virtuels

Protéger un PC Windows volé (à distance)

Comment protéger les données d’un poste windows volé. Nécessite un accès à distance à la machine.

Plus de details